PYTERRA LTD (“We”) are committed to protecting and respecting your privacy. We have put in place policies and procedures to protect any personal information we collect about you to comply with the General Data Protection Regulation (GDPR) Regulation (EU) 2016/679; and any subsequent amendments. Details of how we collect, use and disseminate your personal data are described here to demonstrate our commitment to protecting your privacy.
This policy sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us.
What is the GDPR?
The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679); is an EU regulation that replaces the Data Protection Directive of 1995 (Directive 95/46/EC). GDPR aims to harmonize data protection and data privacy laws across EU member states, giving back control to citizens over their personal data; and to simplify the regulatory environment for businesses by unifying regulations within the EU and by providing a clear legal framework for commercial organisations to operate within.
The Government intends for the GDPR to continue in UK law post-Brexit and has introduced a Data Protection Bill to replace the existing Data Protection Act (DPA).
Your Rights Under GDPR
Your new rights under the GDPR are set out in this policy notice. Please read the following carefully so that you understand our practices regarding your personal data and how we will manage it.
For the purposes of data protection legislation in force from time to time, the Data Controller is:
PyTerra Limited, Whitefriars Business Centre, 2nd Floor, Whitefriars Lewins Mead, Bristol, BS1 2NT, United Kingdom.
Our nominated Data Protection Officer is David Arscott.
Who We Are & What We Do
We are an information and collaboration service company driven to deliver great value and great service for our customers, to support and nurture our staff and partners, and make a positive impact on local communities (“our business”).
We collect the personal data of the following types of people to allow us to undertake our business:
We collect information about you to carry out our core business and ancillary activities.
Information We Collect About You
This is personal information about you that you supply to us by filling in forms on our website mygreendoor.io (“our site”); or by corresponding with us by phone, e-mail or other communication channels. It includes information you provide when you register to use our site, to enter our database, subscribe to our services, attend our events or other social media functions on our site and when you report a problem with our site.
The information you give us, or we collect about you, including your name, address, private and corporate e-mail address, phone number, social media usernames, compliance documentation. As a prospective or live employee or temporary worker, this also includes references verifying your employment history, experience and qualifications, your right to work in the UK, curriculum vitae (CV) and photograph and links to your professional profiles available in the public domain (LinkedIn, Twitter, Facebook or corporate websites).
Information We Collect When You Visit Our Website
With respect to each of your visits to our site, we will automatically collect the following information:
Information We Obtain from Other Sources
This is the information we obtain about you from other sources such as LinkedIn, corporate websites, CVs, your business card and personal recommendations.
In this case, we will inform you, by sending you this policy notice, within a maximum of 30 days of collecting the data of the fact we hold personal data about you, the source the personal data originates from, whether it came from publicly accessible sources, and for what purpose we intend to retain and process your personal data.
We work closely with third parties, business partners, sub-contractors in technical, professional, payment and other services, advertising networks, analytics providers, search information providers, credit reference agencies, professional advisors. We may receive information about you from them for the purposes of potential or live employment and ancillary support services.
Purposes of the Processing and the Legal Basis for the Processing
We use information held about you in the following ways:
Our legal basis for the processing of personal data is our legitimate business interests, described in more detail below, although we will also rely on contract, legal obligation and consent for specific uses of data.
We will rely on a contract if we are negotiating or have entered into an agreement with you or your organisation or any other contract to provide services to you or your organisation.
We will rely on legal obligation if we are legally required to hold information on to you to fulfil our legal obligations.
We will in some circumstances rely on consent for particular uses of your data and you will be asked for your express consent if legally required. An example of when consent may be the lawful basis for processing include gaining permission to introduce you to a client if you are a candidate.
Should we want or need to rely on consent to lawfully process your data, we will request your consent orally, by email or by an online process for the specific activity we require consent for and record your response on our CRM system. Where consent is the lawful basis for our processing, you have the right to withdraw your consent to this particular processing at any time.
Other Uses We Will Make of Your Data
We will use this information to: